tcpdump: updated to 4.99.6
Summary for 4.99.6 tcpdump release
Remove protocol decoding for:
OTV (draft-hasmit-otv-04, this Internet-Draft is no longer active).
Refine protocol decoding for:
DNS: Use ND_TCHECK_LEN() instead of a custom bounds check.
IPv6: Add a missing comma and remove a colon in the output.
TCP: Note if the Urgent Pointer is non-zero while URG flag not set,
if the verbose level is > 1 (option -vv and more).
TCP: Note if the Acknowledgment Number is non-zero while ACK flag not set,
if the verbose level is > 1 (option -vv and more).
TCP: Fix Reset segment processing.
IP, IPv6: Fix setting the snapshot length for the payload.
IP: Use ND_TTEST_LEN() instead of a custom bounds check.
frag6: Add a bounds check in non-verbose mode.
PTP: Remove spaces before colons in output.
PTP: Fix management packet fields.
ISO: Avoid undefined behavior and integer overflow in the Fletcher
[53 lines not shown]
libpcap: updated to 1.10.6
Summary for 1.10.6 libpcap release
General:
Fix "tcpdump -i <n>" for something-only libpcap builds.
gencode: Fix an undefined behavior in gen_mcode().
gencode: Add a missing free() in gen_scode().
Remove "DLT_" from the descriptions of two dlt_choices[] entries.
Report the size of time_t in the version string.
Validate remote capture source strings better.
CVE-2025-11961: Fix OOBR and OOBW in pcap_ether_aton().
Source code:
Remove some unneeded includes.
pcapint_find_function() changed to return "void *" to avoid
warnings.
Clean up code that computes the length of a netmask.
Mind netmap support in pcap_lib_version().
Link-layer types:
Add LINKTYPE_ETW/DLT_ETW.
[87 lines not shown]
textproc/php-yaml: update to 2.3.0
2.3.0 (2025-11-12)
New Features
* Add a composer.json to enable support for PIE (asgrim)
Bugs Fixed
* #97: Ignore null array offset warnings in explicit null tests (bd808)
* avoid unexpected NAN value was coerced to string (remicollet)
KERNEL_LOCK(9): Improve diagnostics when hogging kernel lock.
1. Log diagnostics unconditionally, even if !LOCKDEBUG -- only put the
_KERNEL_LOCK_ABORT("spinout") under LOCKDEBUG.
2. Spin up to ten seconds (not 0x0fffffff iterations of the loop), as
measured by getticks() and hz, before logging diagnostics.
3. Avoid printing anything if it was already printed in the last ten
seconds.
This uses a somewhat grody symbol alias hack to keep the declaration
of kernel_lock intact so it doesn't require changes in sys/lock.h or
its users.
kern/59870: kernel lock runtime diagnostics are difficult
Pullup ticket #7039 - requested by nia
emulators/qemu7: Security fix
Revisions pulled up:
- emulators/qemu7/Makefile 1.9
- emulators/qemu7/distinfo 1.2
---
Module Name: pkgsrc
Committed By: nia
Date: Fri Jan 2 00:32:38 UTC 2026
Modified Files:
pkgsrc/emulators/qemu7: Makefile distinfo
Log Message:
qemu7: Update to qemu-7.2.22
This is exclusively a bug and security fix release that fixes a
use-after-free and various aborts.
racket-textual: update to 9.0
- Supports parallel threads
- Parallel threads can be created using the #:pool argument to
thread creation.
- Threads created with #:keep set to 'results
will record their results for later retrieval with thread-wait.
- The black-box wrapper prevents the optimizing compiler from
optimizing away certain computations entirely. This can be helpful
in ensuring that benchmarks are accurate.
- The decompile-linklet function can map linklets back to
s-expressions.
- When using BC Racket, the processor-count function is changed to
always return the parallel count.
- We now distribute “natipkg” packages for AArch64, useful for
[8 lines not shown]
fonts/ttmkfdir2: avoid undefined behavior
The function that produced the font foundry name was returning a
pointer to its own automatic storage for cases where it was generating
"misc" for an unknown foundry. This is just as invalid in C++ as it is
in C, and dressing it up in C++ goop just made it harder to see that
it was wrong.
XXX: There's half a dozen entries in the foundry table here that are
XXX: unmatchable because they're lower-case and it does toupper()
XXX: before matching.
